Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
one web server vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2014-1761
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Word Viewer; Office Compatibility Pack SP3; Office for Mac 2011; Word Automation Services on SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allo...
Microsoft Word 2010
Microsoft Word 2003
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2013
Microsoft Word Viewer
Microsoft Word 2013
Microsoft Office Web Apps Server 2013
Microsoft Office 2011
Microsoft Office Compatibility Pack
Microsoft Sharepoint Server 2010
Microsoft Word 2007
1 EDB exploit
1 Github repository
6 Articles
NA
CVE-2023-0156
The All-In-One Security (AIOS) WordPress plugin prior to 5.1.5 does not limit what log files to display in it's settings pages, allowing an authorized user (admin+) to view the contents of arbitrary files and list directories anywhere on the server (to which the web server h...
Updraftplus All-in-one Security
1 Github repository
7.5
CVSSv2
CVE-2005-4560
The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote malicious users to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (S...
Microsoft Windows 2003 Server Standard
Microsoft Windows 2003 Server Web
Microsoft Windows Xp
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server R2
1 EDB exploit
7.2
CVSSv2
CVE-2005-0047
Windows 2000, XP, and Server 2003 does not properly "validate the use of memory regions" for COM structured storage files, which allows malicious users to execute arbitrary code, aka the "COM Structured Storage Vulnerability."
Microsoft Windows Xp
Microsoft Windows 2003 Server R2
Microsoft Windows 2000
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server Standard
Microsoft Windows 2003 Server Web
1 EDB exploit
7.5
CVSSv2
CVE-2003-0818
Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote malicious users to execute arbitrary code via ASN.1 BER encodings with (1) very large...
Microsoft Windows 2000
Microsoft Windows 2003 Server Web
Microsoft Windows Nt 4.0
Microsoft Windows Xp
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Standard
3 EDB exploits
10
CVSSv2
CVE-2004-0212
Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or remote malicious users to execute arbitrary code via a .job file containing long parameters, as demonstrated using Internet Explorer and accessing...
Microsoft Ie 6.0
Avaya Definity One Media Server
Avaya S8100
Avaya Ip600 Media Servers
Microsoft Windows 2000
Microsoft Windows Nt 4.0
Avaya Modular Messaging Message Storage Server S3400
Microsoft Windows Xp
2 EDB exploits
10
CVSSv2
CVE-2013-4732
The administrative web server on the Digital Alert Systems DASDEC EAS device up to and including 2.0-2 and the Monroe Electronics R189 One-Net EAS device up to and including 2.0-2 uses predictable session ID values, which makes it easier for remote malicious users to hijack sessi...
Digital Alert Systems Dasdec Eas 2.0-1
Monroe Electronics R189 One-net Eas
Digital Alert Systems Dasdec Eas
Monroe Electronics R189 One-net Eas 2.0-1
Monroe Electronics R189 One-net Eas 2.0-0
Digital Alert Systems Dasdec Eas 2.0-0
7.8
CVSSv2
CVE-2013-4733
The web server on the Digital Alert Systems DASDEC EAS device prior to 2.0-2 and the Monroe Electronics R189 One-Net EAS device prior to 2.0-2 allows remote malicious users to obtain sensitive configuration and status information by reading log files.
Monroe Electronics R189 One-net Eas 2.0-0
Monroe Electronics R189 One-net Eas
Digital Alert Systems Dasdec Eas 2.0-0
Digital Alert Systems Dasdec Eas
5
CVSSv2
CVE-2021-25229
An improper access control vulnerability in Trend Micro Apex One (on-prem and SaaS) and OfficeScan XG SP1 could allow an unauthenticated user to obtain information about the database server.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
7.5
CVSSv2
CVE-2004-0842
Internet Explorer 6.0 SP1 and previous versions, and possibly other versions, allows remote malicious users to cause a denial of service (application crash from "memory corruption") via certain malformed Cascading Style Sheet (CSS) elements that trigger heap-based buffe...
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 5.5
Avaya S8100
Avaya Ip600 Media Servers
Avaya Definity One Media Server
Avaya S3400
Microsoft Internet Explorer 6.0
Microsoft Ie 6.0
Avaya Modular Messaging Message Storage Server 1.1
Avaya Modular Messaging Message Storage Server 2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »